From b97858641c13acfabf38a43183aab62a0a9b052d Mon Sep 17 00:00:00 2001
From: nacin <nacin@1a063a9b-81f0-0310-95a4-ce76da25c4cd>
Date: Fri, 3 Sep 2010 10:18:32 +0000
Subject: [PATCH] Add a note about REMOTE_ADDR behind proxies.

git-svn-id: http://svn.automattic.com/wordpress/trunk@15560 1a063a9b-81f0-0310-95a4-ce76da25c4cd
---
 wp-includes/comment.php | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/wp-includes/comment.php b/wp-includes/comment.php
index f7cedaa5d..8cffff495 100644
--- a/wp-includes/comment.php
+++ b/wp-includes/comment.php
@@ -1245,6 +1245,10 @@ function wp_throttle_comment_flood($block, $time_lastcomment, $time_newcomment)
  * and whether comment is approved by WordPress. Also has 'preprocess_comment'
  * filter for processing the comment data before the function handles it.
  *
+ * We use REMOTE_ADDR here directly. If you are behind a proxy, you should ensure
+ * that it is properly set, such as in wp-config.php, for your environment.
+ * See {@link http://core.trac.wordpress.org/ticket/9235}
+ *
  * @since 1.5.0
  * @uses apply_filters() Calls 'preprocess_comment' hook on $commentdata parameter array before processing
  * @uses do_action() Calls 'comment_post' hook on $comment_ID returned from adding the comment and if the comment was approved.